Описание
TYPO3 Information Disclosure in User Authentication
It has been discovered that login failures have been logged on the default stream with log level "warning" including plain-text user credentials.
Пакеты
Наименование
typo3/cms-core
composer
Затронутые версииВерсия исправления
>= 9.0.0, < 9.5.6
9.5.6
5.3 Medium
CVSS3
Дефекты
CWE-256
5.3 Medium
CVSS3
Дефекты
CWE-256